Private Nanolog Firewall Requirements

Looking for the latest changes? Changelog.

In order to make certain that the Private NANOLOG works correctly in your environment, please ensure that your firewall configuration allow the types of traffic necessary. Refer to the following table for more details.

Service Source Destination Description
Inbound
TCP 9431 ANY or Zscaler Hub IP Addresses, Zscaler Private Enforcement Nodes (ZEN), Private NANOLOG IP Addresses, & If Required Zscaler Public Cloud Enforcement Nodes, NSS Virtual Appliances Private NANOLOG Service IP Addresses Real-time Logs
TCP/UDP Any & ICMP Zscaler Cloud management IP addresses Private Nanolog IPMI IP Addresses IPMI interface, Lights Out Management
TCP 12001 & ICMP Zscaler HUB IP Addresses Private Nanolog Management IP Addresses Management interface, SSH Management of Nanologs, Active Service Monitoring, Centralized System Configuration
TCP Any Zscaler HUB IP Addresses Private Nanolog IP Addresses Service interface, Active Service Monitoring
Outbound
TCP 9422
TCP 9442
TCP 9431
TCP 443
Private NANOLOG IP Addresses ANY or Zscaler Hub IP Addresses & Private NANOLOG IP Addresses TLS Encrypted Communication to Zscaler Cloud Central Authority (Policy, Monitoring), Nanolog (Logging), and Content Distribution (Updates)
TCP 53 (DNS)
UDP 53 (DNS)
Private NANOLOG IP Addresses ANY or Customer Provided DNS Servers DNS Resolution
UDP 123 (NTP) Private NANOLOG IP Addresses ANY or Customer NTP IP Addresses NTP Communication
  • See page 2 for specific IP addresses/ranges referenced

Zscaler Hub IP Addresses

Required IP Addresses
165.225.44.0/24165.225.75.0/24
104.129.202.0/24165.225.108.0/24
8.25.203.0/24 27.251.211.238/32
216.52.207.64/26213.152.228.0/24
64.74.126.64/26 70.39.159.0/24
72.52.96.0/2689.167.131.0/24
104.129.192.0/23104.129.194.0/23
104.129.196.0/23185.46.212.0/22
199.168.148.0/24165.225.72.0/22
199.168.149.0/24199.168.150.0/24
199.168.151.0/24209.51.184.0/26
216.218.133.192/26137.83.128.0/18
Recommended IP Addresses
104.129.192.0/20
165.225.0.0/17
165.225.192.0/18
199.168.148.0/22